Control: AWS > NIST 800-53 > CloudTrail > At least one trail should be enabled with security best practices

This rule helps ensure the use of AWS recommended security best practices for AWS CloudTrail, by checking for the enablement of multiple settings. These include the use of log encryption, log validation, and enabling AWS CloudTrail in multiple regions.

Resource Types

This control targets the following resource types:

AWS > CloudTrail > Trail

In Your Workspace

Developers

Control Type URI

tmod:@turbot/aws-nist-800-53#/control/types/cloudTrailSecurityTrailEnabled

Category URI

tmod:@turbot/turbot#/control/categories/complianceNist80053

GraphQL

query controlType(id: "tmod:@turbot/aws-nist-800-53#/control/types/cloudTrailSecurityTrailEnabled") { … }

query controls(filter: "controlTypeId:'tmod:@turbot/aws-nist-800-53#/control/types/cloudTrailSecurityTrailEnabled'") { … }

CLI

Get Controls

turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-nist-800-53#/control/types/cloudTrailSecurityTrailEnabled"